Author Archives: 2101704571georgius

Sqlmap

Sqlmap is a powerful penetration testing tool used to detect and exploit sql injection vulnerabilities. For demonstration, team1.pentest.id will be attacked using sqlmap sqlmap -u “team1.pentest.id/?author=1/”  The result is that the sqlmap was unsuccessful due to error 403 forbidden.

Posted in Uncategorized | Leave a comment

Searchsploit

Searchsploit is a convenient tool used when a quick search of exploits are needed. For example if a person wants to check if there is any vulnerability in WordPress, they can use searchsploit. Searchsploit shows exploits for wordpress themes, plugins … Continue reading

Posted in Uncategorized | Leave a comment

Crunch

Crunch is a useful password list generator for generating password lists based on criteria. crunch min max options where minimum is the minimum amount of characters, maximum is the maximum amount of characters and options are the characters used for … Continue reading

Posted in Uncategorized | Leave a comment

Whois

Whois is a convenient tool used to search domain information. This tool shows registrar info, name server, expiration date and etc.

Posted in Uncategorized | Leave a comment

John The Ripper

John the ripper is a powerful tool used for offline cracking tool. It can autodetect a lot of hashes such as FreeBSD MD5-based and etc. For demonstration, the shadow file in /etc/shadow/ will be cracked in the VM. From this … Continue reading

Posted in Uncategorized | Leave a comment

Nikto Website Scanner

Nikto is a website scanning tool designed not for stealth, but for quickest result. Nikto has many features such as checking for outdated software versions (PHP, apache, etc), checking for vulnerability and etc.

Posted in Uncategorized | Leave a comment

Vulnerability Exploitation Using Metasploit

The Metasploit framework is a very powerful tool capable of information gathering, vulnerability analysis, exploit vulnerabilities and etc. For a full tutorial, visit https://www.offensive-security.com/metasploit-unleashed/.

Posted in Uncategorized | Leave a comment

Dirb Web Content Scanner

DIRB is a web content scanner used for scanning both hidden and non hidden web objects. It does a dictionary based attack against a web server and checks every response given.

Posted in Uncategorized | Leave a comment

Nmap

Nmap is a network mapping tool used for network discovery. Nmap can get information such as open ports, OS, version and etc. Nmap has a lot of options such as syn scan, udp scan and etc.

Posted in Uncategorized | Leave a comment

Information Gathering Using TheHarvester

TheHarvester is used to gather emails, subdomains, hosts, employee names and etc. The tool is only available in CLI but is very straightforward.

Posted in Uncategorized | Leave a comment